Описание
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH credentials.
EPSS
Процентиль: 2%
0.00014
Низкий
6.2 Medium
CVSS3
Дефекты
CWE-522
Связанные уязвимости
CVSS3: 6.2
github
23 дня назад
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH credentials.
EPSS
Процентиль: 2%
0.00014
Низкий
6.2 Medium
CVSS3
Дефекты
CWE-522